Whenever data is sent over the internet it is done so in small pieces called packets. These packets contain the information about its origin, its destination and the route it has to take. These packets are to be filtered according to the access policy of the recipient. It is very important for a private network when exposed to internet to defend itself against unwanted intrusion therefore packets arriving at its IP address has to be monitored and filtered. This filtration of packet data is carried out by Static and Dynamic filtration. The access policy of the recipient consists of the rules for site and its contents apart from protocol rules that have to be followed by the arriving packets. Filtration allows the packets to pass through firewall protection if they are friendly and dropped if they are not.
Static Filtration
These filters are used in very special cases with the help of wizard. These filters are used to allow very specific traffic like mail or specific internet programs and not to the whole array of internet. Static ports once installed will always keep the port open for which they are configured until they are closed manually.
Dynamic Filtration
These filters keep the ports opening and closing for the arriving packet data according to the rule of the site content and protocol. This filtration can be applied to the whole array or at individual level. These filters are configured to follow the rules of the private network and allow the packets that follow the policy and protocol of the IP address they are arriving at.
In brief: Static vs dynamic filtration • Dynamic filters are always opening and closing whereas Static filters remain open or close until the setting is changed manually. • Dynamic filters are created through the policy of the network so as to close or open the IP ports according to the need of the network. Static filters are created through wizard. • Dynamic filtration is very common for every network whereas Static filtration is used for very special network.
|